VULHUB ™

SoftRemote and SoftRemoteLT VPN client utilities are reported prone to a local pre-shared key (password) disclosure vulnerability. It is reported that the VPN password is stored in the memory image of the process in plain-text format. Credentials that are harvested through the exploitation of this vulnerability may then be used to aid in further attacks.

SoftRemote and SoftRemoteLT VPN client utilities are reported prone to a local pre-shared key (password) disclosure vulnerability. It is reported that the VPN password is stored in the memory image of the process in plain-text format. Credentials that are harvested through the exploitation of this vulnerability may then be used to aid in further attacks.